| Usercomm Number: 2016 - 2 |
 Usercomm - SSLV3 is being disabled in FTP, TELNET, DCAS, SENDMAIL, Policy Agent hits: 473 |
| Posted by Lori VerSteeg [dz1mg9] on Jan 14 2016 |
Reserved: |
Scope:
FTP, TELNET, DCAS, SENDMAIL, Policy Agent on all mainframe MVS systems
Effective Date:
Implementation dates are being scheduled with separate change requests for each system.
Group Name:
MVS/Network Software Services
Affected Locations:
All Mainframe MVS systems
Summary:
SSLV3 is being disabled in FTP, TELNET, DCAS, SENDMAIL, Policy Agent
Justification:
Security/integrity maintenance
Benefits to Users:
A more secure environment
Details:
Maintenance is being installed that will change the default for SSLv3 to be Disabled for:
AT-TLS
FTP client and server
TN3270 server
DCAS server
Policy Agent
Sendmail
Client 3270 emulator software, e.g. Attachmate Extra!, IBM PCOMM, should be at a supported version/release level and should be configured to use security protocol TLS 1.0 or higher.
If there are problems with SSL applications or connections not working after the maintenance has been installed, follow the normal problem reporting process. SSLV3 can be turned back on temporarily until the problem application can be updated to use a more secure protocol version, such as TLSv1, TLSv1.1, or TLSv1.2.
Primary Contact:
Lori VerSteeg, MVS Software, lori.versteeg@hpe.com
Secondary Contact:
Charles Hights, Network Software, charles.hights@hpe.com
|
|
|
